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Integration Patterns 


When to Use 


Benefits 


Consideration 


Application to 
Application 


Point-to-point 
exchange 


Tight integration 


Limited scability 


Standard Build 


Strong branding 
Strong urge to 
standardize 


Reduce deployment 
effort 

Standardize service, 
faster deployment with 
no customization 


Consensus on 
standard builds 


Hub-Spoke 

Replication 

Federated 

Replication 

Multi-step 

Application 

integration 


Hub-spoke business 
model 

Intra-enterprise 
integration 


Flexible workflow 
integration 
Reliable and 
consistent multi-step 
application integration 


Inter-enterprise 
integration with many 
customization options 


Data Exchange 


Large number of 
partners to integrate 
with heterogeneous 
platforms & standards 


Accommodating 
differences in 
standard/interfaces 


Emerging standards 
and technology 


Closed Process 
Integration 
Open Process 
Integration 


Shared business 
processes 
Workflow-oriented 
services 


Richer support for 
process integration 
Cohesive and tightly 
integrated services 


Complexity for 
partners to agree and 
implement 


Service Consolidation- 
Broker Integration 
Reverse Auction- 


Single front-end for 
multiple Service 
Providers 


Added values and 

Service-Provider 

neutral 


Handling service 
failure of partners 



Broker Integration 
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Integration Patterns 


Typical Technology 
Used 


Typical Standards 
Used 


Examples 


Application to 
Aoolication 


Customized adapters 
EDI translator 


Proprietary XML 
variants 


Ariba 

Commerce One 


Standard Build 


Proprietary 


Proprietary 


Hexagon 


Hub-Spoke 

Replication 

Federated 

Replication 

Multi-step 

Application 

Integration 


EAI solutions, such as 
Amtrix, Mercator, and 
TIBCO 


JMS, SOAP-JMS 
binding 


eXonomy 


Data Exchange 


XML Web Services 


XML and SOAP, 
UDDI, WSDL 


AIG 

Visa Commerce 


Closed Process 
Integration 
Open Process 
Integration 


EAI solutions or 
middleware, such as 
Sun ONE 
Integration Server 
EAI edition, XML 
Web Services 
technology 


BPEL4WS 




Service Consolidation- 
Broker Integration 
Reverse Auction- 
Broker Integration 


Hybrid of any 
integration technology 


Hybrid of any 
integration standards 


Yahoo! 

Digilogistics 

(obsolete) 

CFOWeb 

Vcheq (obsolete) 

Bumiputra 

Commerce Bank 
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Security Mechanism 


Examples of Security 
Protection 


Security Standards 
Specifications 


Service Negotiation 


Identity management 

Access control and 
policy management 
Sinale Sian-on 


Liberty-complaint 
Identity Server 

Access control for 
XML messaaes 
Single Sign-on 
products 


Identity management- 
Li berty 1.1, XML Key 
Management Specification 
(XKMS), WS-Federation 
Entitlement-SAML 
XACML, WS-Authorization 

Policy-WS-Policy 
Others--WS-Secure 
Conversation, WS-Trust, 
WS-Privacy 


Service Discovery 


Service Registry 
security 


UDDI Service Registry 
security features 
Protection for WSDL 
documents 


UDDI 
WSDL 


Transaction Routing 


Messaging security 


Data encryption 

Digital signature 

Key management and 
managing credentials 


XML Encryption (XML- 
ENC) 

XML Signature (XML- 
DSIG) 

WS-Security 
XKMS 


Transport 


Data transport security 


128-bit SSL with 
HTTPS 

Protocol security for 
FTP, SMTP, and so 
forth 


HTTPS 
HTTPR 
IPSec 


Internet 


Network connectivity 
security 


Leased line or router- 
ievei encryption 
Virtual Private 
Network 
(VPN) gateways 




Platform 


Operating system 
security 

Penetration testing 

Key exchanges 
between hosts 


Solaris OE™ hardening 

Linux Operating System 
(OS) hardening 

Window OS hardening 





Professional Penetration 
Testing 
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Security Technology or Standards 


Security Requirements 


Trust Domains 


Key management 


XKMS 

Host security hardening 


Authentication 
Confidentiality 
Traceablilty 
Non-repudiation 


Authentication 


Single Sign-on with SAML and Directory Server 


Authentication 
Entitlement 
Traceability 
Availability 


Transactional security 


XML Encryption, ZML-DSIG 

XACML 

WS-Security 

Client and host security hardening 


Entitlement 
Confidentiality 
Availability 
Data integrity 
Non-repudiation 


Threat Profiling 


Web Services 
objects 


Security hardening for UDDI configuration files 
and WSDLs 


Data integrity 
Availability 


Hacker attack 


Profiling of transaction loading/capacity to 

support availability and scalability 

Client and host security hardening 

Virus protection for hosts 

Intrusion detection testing 

Patch management for software platform 

(for example, buffer overflow) 


Availability 

Confidentiality 

Traceability 

Entitlement 

Non-repudiation 
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Web Services Objects 


Location 


Remarks 


Web Container 




In this example, this is Apache Tomcat 4.x 


User access control 
list 


D:\Dev\WSDP\conft 
tomcat-users. xml 


This file contains the user names, user passwords, 
and roles that are allowed to access and execute 
resources under the web Container. 


Server configuration 
files 


D:\Dev\WSDP\conf\ 
server.xml 


This file contains the server configuration (for 
example, port number) for running the Tomcat 
server. 


Log Files 


Web Container log 
files 


D:\Dev\WSDP\logs 


In this example, Tomcat log files are used. This 
directory contains log files for Tomcat server 
(Catalina.out), server administration log 
(localhost_admin_log*.logand accessJogMog and 
servicesJogMog), as well as Service Registry log 
(xindice.log). 


Developer tool log files 


D:\Dev\WSDP\logs\ 
jwsdpJogMog 


In this example, Java Web Services Developer 
Pack's log files are shown. 


Service Registry 
update activity log file 


D:\Dev\WSDP\tools\ 

xindice\logs\ 

xindice.log 


In this example, the Xindice database activity log 
file is used 


Message Provider 


ebXML message 
provider administration 
logs 


D:\Dev\WSDP\work\ 
Services Engines\ 
jaxm-provider\ebxml 


There are four subdirectories that contain the 
message received, sent, to be dispatched, and to 
be sent. This denotes the physical location where 
the JAXM message provider will send or receive 
the messages with the reliable message delivery 
capability. 
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Web Services Objects 


Location 


Remarks 


SOAP Remote 
Provider message 
provider administration 
logs 


D:\Dev\WSDP\work\ 
Services Engines\ 
jaxm-provider\soaprp 


There are four subdirectories that contain the 
messages received, sent, to be dispatched, and to 
be sent. This denotes the physical location where 
the SOAP remote message provider will send or 
receive the messages with the reliable message 

Hpli\/pr\/ panahiliK/ 


Service Registry 




In Java Web Services Developer Pack, UDDI 
Service Registry is implemented using Xindice 
object database. 


Service Registry files 


D:\Dev\WSDP\tools\ 
xindice\db 


This file location contains the subdirectory 'system' 
for the object database system files and security 
information, and the subdirectory 'uddi' for the 
actual UDDI data store. 


WSDL documents 


N/A 


In this demo environment, the WSDL documents 
are generated dynamically and do not store in the 
Service Registry 



FIG. 105B 




FX Service Provider 
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Web Services 
Service 
Registry 



Find/Discover 



TSIKJWSDP 
Tomcat 




Clients 



Web Services 
Consumer 



JWSDPXindice 
Server Tomcat 



Publish/Register 




Bind, Invoke 



Web Services 
Service 
Provider 



TSIKJWSDP 
Tomcat 
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Currency 
Profile 



JAXM/TSIK 



ControlServlet 
(Controller) 



HTTP 



V 7 



Clients 



FXPrice 
(Provider) 




JAXR-RPC 



JAXR 



V 7 



JAXR 



Registry 
Server 
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Client 


Presentation 


Tiers 


Integration 


Resource 








Business 




Application 


user ia ana 


oontroi 


Java Deans 


M/A 

N/A 


M/A 

N/A 


Platform 


oassword are 


Servlet uses 


are used to 






Layer 


used for 


HTML and 


implement 






authentication. 


JSP for 


some of the 










presentation 


business 










and inquiry. 


logic. 










JSPs can be 


The remote 










cached to 


FX Quote 










enhance 


Service is a 










performance. 


black box, 












accessible via 












JAX-RPC. 






Virtual 


HTTP 


HTTP 


JAXM-TSIK 


JAX-RPC 


JAXR is used 


Platform 






Message 


JAXM are 


to access the 


Layer 


HTTPS with 


HTTPS with 


Provider 


used to 


Service 


SSL can be 


SSL can be 


provides 


integrate 


Registry. 




used for better 


used for better 


secure 


different 




con iritw 
ocL/UI ILy . 


con iritw 
ocUUI ILy . 


1 1 icoody II ly 


1 cl 1 lULc 










trains no ft for 


^prvipp^ 










SOAP 












mp^anpq 

1 1 lUOOOUCO 












ovpr HTTP 

v VUI III II . 






Upper 


In the future, 


HTTP load 


N/A 


In the future, 


In the future, 


Platform 


128-bit SSL 


balancing can 




server 


server 


L avpr 

^ciy ci 


ran hp u^pd 


hp i icpH for 




rlu^tprinn ran 

i^iuoici ii ly uui i 


Hu^tprinn ran 




fnr hpttpr 


hptfpr 




hp i iqprj frjr 


hp iicpfj for 

L/o UOUU IUI 




ouL/Ui iiy . 


cpalahilitw 
oOdldUIIILy . 




awailahilitw 
d VdlldUMI Ly . 


awailahilitw 
d v diid uiii ty . 


Lower 


Basic 


N/A 


N/A 


N/A 


N/A 


Platform 


Operating 










Layer 


System w 












security is 












provided with 












id and 












password. 










Hardware 


SSL 


Reliability and 


Reliability and 


N/A 


Reliability and 


Platform 


accelerator 


securability 


securability 




securability 


Layer 


can be added 


can be 


can be 




can be 


in the future 


enhanced in 


enhanced in 




enhanced in 




for faster 


the future with 


the future with 




the future with 




performance 


server 


server 




server 




when using 


hardening, 


hardening, 




hardening, 




HTTPS. 


firewall 


firewall 




firewall 






configuration, 


configuration, 




configuration, 






and hardware 


and hardware 




and hardware 






clustering. 


clustering. 




clustering. 
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